P
US9838872B2ActiveUtilityPatentIndex 84

System and method for mobile identity protection for online user authentication

Assignee: VISA INT SERVICE ASSPriority: Mar 16, 2007Filed: Oct 26, 2015Granted: Dec 5, 2017
Est. expiryMar 16, 2027(~0.7 yrs left)· nominal 20-yr term from priority
Inventors:DENNIS CHARLES LSNYDER RANDALL ABUHRMANN MICHAEL FBOYLE PATRICK J
H04L 63/08G06F 21/35G06Q 20/108H04L 63/0876H04L 63/0853H04W 12/06H04W 12/08H04L 63/1416H04L 63/10H04W 84/005H04W 12/12G06Q 20/32H04W 12/126
84
PatentIndex Score
5
Cited by
83
References
19
Claims

Abstract

An automated system and method for authenticating entities or individuals attempting to access a computer application, network, system or device using a wireless device is provided. The system employs one or more short-range wireless interfaces (e.g. BLUETOOTH or Wi-Fi) or long-range wireless interfaces (e.g. cellular or WiMAX)to detect the presence or location of the wireless device and it's proximity to the secure system to be accessed. The wireless device incorporates a unique identifier and secure authentication key information associated with the user of the wireless device. An authentication result is generated and may be used for a variety of applications. The application may process the result and determine the degree of access for which the entity or individual is allowed.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
       1. A method for detecting fraud using a wireless device of an entity, the method comprising:
 obtaining, by an authentication application, data regarding an application access event from a data network, the application access event being an attempt to access an application by the entity, and wherein the application access event is automatically invoked when the wireless device of the entity is proximate to a mobile access point associated with the application; 
 obtaining, by the authentication application, a unique identifier representing the entity; 
 obtaining, by the authentication application, a location of the application access event from the mobile access point; 
 obtaining, by the authentication application, a location of the wireless device; 
 generating, by the authentication application, an authentication result based on at least the location of the application access event and a time that the location of the application access event was obtained, and the location of the wireless device; and 
 allowing or not allowing the entity to access the application based upon the authentication result. 
 
     
     
       2. The method of  claim 1 , wherein the unique identifier is a mobile directory number. 
     
     
       3. The method of  claim 1 , wherein the data regarding the application access event comprises an application ID representing the application. 
     
     
       4. The method of  claim 1 , wherein the mobile access point is a personal computer. 
     
     
       5. The method of  claim 1 , wherein the authentication result is used to deny access to the application. 
     
     
       6. An apparatus comprising:
 a processor; and 
 a computer readable medium, the computer readable medium comprising code, executable by the processor, to implement a method comprising: 
 obtaining data regarding an application access event from a data network, the application access event being an attempt to access an application by an entity, and wherein the application access event is automatically invoked when a wireless device of the entity is proximate to a mobile access point associated with the application; 
 obtaining a unique identifier representing the entity; 
 obtaining a location of the application access event from the mobile access point; 
 obtaining a location of the wireless device; 
 generating an authentication result based on at least the location of the application access event and a time that the location of the application access event was obtained, and the location of the wireless device; and 
 allowing or not allowing the entity to access the application based upon the authentication result. 
 
     
     
       7. The apparatus of  claim 6 , wherein the unique identifier is a mobile directory number. 
     
     
       8. The apparatus of  claim 6 , wherein the data regarding the application access event comprises an application ID representing the application. 
     
     
       9. The apparatus of  claim 6 , wherein the mobile access point is a base station. 
     
     
       10. The apparatus of  claim 6 , wherein the authentication result is used to deny access to the application. 
     
     
       11. A method of authenticating an entity using a wireless device associated with the entity and configured to generate a wireless signal, the method comprising the steps of:
 detecting the wireless device entering into proximity of an electronic device configured to provide the entity, upon authentication of the entity, access to use of an application requiring secure access; 
 obtaining from the wireless signal a unique identifier associated with the wireless device; 
 obtaining a location of the wireless device based on the unique identifier; 
 obtaining data regarding a location of the electronic device; 
 generating an authentication result authenticating the entity based on at least the unique identifier associated with the wireless device, the location of the wireless device, and data regarding the location of the electronic device; and 
 enabling the entity to use the application requiring secure access. 
 
     
     
       12. The method of  claim 11 , wherein the authentication result is generated by at least comparing the location of the electronic device and the location of the wireless device. 
     
     
       13. The method of  claim 11 , wherein the unique identifier is a mobile directory number. 
     
     
       14. The method of  claim 11 , wherein the data regarding the location of the electronic device comprises an IP address of the electronic device. 
     
     
       15. The method of  claim 11 , wherein the electronic device is a base station. 
     
     
       16. The method of  claim 11 , wherein the application is on the electronic device. 
     
     
       17. The method of  claim 11 , wherein the wireless device is a mobile phone. 
     
     
       18. The method of  claim 11 , wherein the application is present on the electronic device. 
     
     
       19. The method of  claim 11 , wherein communication with the wireless device is encrypted.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.